Petter Reinholdtsen: Simpler recipe on how to make a simple $7 IMSI Catcher using Debian

-[...] -device /dev/mapper/Debian-var mounted on /var with fstype ext3 -device nfsserver:/mnt/nfsserver/home0 mounted on /mnt/nfsserver/home0 with fstype nfs statvers=1.1 - opts: rw,vers=3,rsize=65536,wsize=65536,namlen=255,acregmin=3,acregmax=60,acdirmin=30,acdirmax=60,soft,nolock,proto=tcp,timeo=600,retrans=2,sec=sys,mountaddr=129.240.3.145,mountvers=3,mountport=4048,mountproto=udp,local_lock=all - age: 7863311 - caps: caps=0x3fe7,wtmult=4096,dtsize=8192,bsize=0,namlen=255 - sec: flavor=1,pseudoflavor=1 - events: 61063112 732346265 1028140 35486205 16220064 8162542 761447191 71714012 37189 3891185 45561809 110486139 4850138 420353 15449177 296502 52736725 13523379 0 52182 9016896 1231 0 0 0 0 0 - bytes: 166253035039 219519120027 0 0 40783504807 185466229638 11677877 45561809 - RPC iostats version: 1.0 p/v: 100003/3 (nfs) - xprt: tcp 925 1 6810 0 0 111505412 111480497 109 2672418560317 0 248 53869103 22481820 - per-op statistics - NULL: 0 0 0 0 0 0 0 0 - GETATTR: 61063106 61063108 0 9621383060 6839064400 453650 77291321 78926132 - SETATTR: 463469 463470 0 92005440 66739536 63787 603235 687943 - LOOKUP: 17021657 17021657 0 3354097764 4013442928 57216 35125459 35566511 - ACCESS: 14281703 14290009 5 2318400592 1713803640 1709282 4865144 7130140 - READLINK: 125 125 0 20472 18620 0 1112 1118 - READ: 4214236 4214237 0 715608524 41328653212 89884 22622768 22806693 - WRITE: 8479010 8494376 22 187695798568 1356087148 178264904 51506907 231671771 - CREATE: 171708 171708 0 38084748 46702272 873 1041833 1050398 - MKDIR: 3680 3680 0 773980 993920 26 23990 24245 - SYMLINK: 903 903 0 233428 245488 6 5865 5917 - MKNOD: 80 80 0 20148 21760 0 299 304 - REMOVE: 429921 429921 0 79796004 61908192 3313 2710416 2741636 - RMDIR: 3367 3367 0 645112 484848 22 5782 6002 - RENAME: 466201 466201 0 130026184 121212260 7075 5935207 5961288 - LINK: 289155 289155 0 72775556 67083960 2199 2565060 2585579 - READDIR: 2933237 2933237 0 516506204 13973833412 10385 3190199 3297917 - READDIRPLUS: 1652839 1652839 0 298640972 6895997744 84735 14307895 14448937 - FSSTAT: 6144 6144 0 1010516 1032192 51 9654 10022 - FSINFO: 2 2 0 232 328 0 1 1 - PATHCONF: 1 1 0 116 140 0 0 0 - COMMIT: 0 0 0 0 0 0 0 0 - -device binfmt_misc mounted on /proc/sys/fs/binfmt_misc with fstype binfmt_misc -[...] -

@@ -758,6 +740,8 @@ much welcome some clues, as we regularly run into NFS hangs.

July (1)

August (1)

2016 @@ -1024,7 +1008,7 @@ much welcome some clues, as we regularly run into NFS hangs.

@@ -1038,7 +1022,7 @@ much welcome some clues, as we regularly run into NFS hangs.

@@ -1082,7 +1066,7 @@ much welcome some clues, as we regularly run into NFS hangs.

@@ -1112,7 +1096,7 @@ much welcome some clues, as we regularly run into NFS hangs.

diff --git a/blog/index.rss b/blog/index.rss index b1ddc702fb..3b4e21fa9b 100644 --- a/blog/index.rss +++ b/blog/index.rss @@ -6,6 +6,97 @@ http://people.skolelinux.org/pere/blog/ + + Simpler recipe on how to make a simple $7 IMSI Catcher using Debian + http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html + http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html + Wed, 9 Aug 2017 23:59:00 +0200 + On friday, I came across an interesting article in the Norwegian +web based ICT news magazine digi.no on +<a href="https://www.digi.no/artikler/sikkerhetsforsker-lagde-enkel-imsi-catcher-for-60-kroner-na-kan-mobiler-kartlegges-av-alle/398588">how +to collect the IMSI numbers of nearby cell phones</a> using the cheap +DVB-T software defined radios. The article refered to instructions +and <a href="https://www.youtube.com/watch?v=UjwgNd_as30">a recipe by +Keld Norman on Youtube on how to make a simple $7 IMSI Catcher</a>, and I decided to test them out. + +The instructions said to use Ubuntu, install pip using apt (to +bypass apt), use pip to install pybombs (to bypass both apt and pip), +and the ask pybombs to fetch and build everything you need from +scratch. I wanted to see if I could do the same on the most recent +Debian packages, but this did not work because pybombs tried to build +stuff that no longer build with the most recent openssl library or +some other version skew problem. While trying to get this recipe +working, I learned that the apt->pip->pybombs route was a long detour, +and the only piece of software dependency missing in Debian was the +gr-gsm package. I also found out that the lead upstream developer of +gr-gsm (the name stand for GNU Radio GSM) project already had a set of +Debian packages provided in an Ubuntu PPA repository. All I needed to +do was to dget the Debian source package and built it. + +The IMSI collector is a python script listening for packages on the +loopback network device and printing to the terminal some specific GSM +packages with IMSI numbers in them. The code is fairly short and easy +to understand. The reason this work is because gr-gsm include a tool +to read GSM data from a software defined radio like a DVB-T USB stick +and other software defined radios, decode them and inject them into a +network device on your Linux machine (using the loopback device by +default). This proved to work just fine, and I've been testing the +collector for a few days now. + +The updated and simpler recipe is thus to + +<ol> + +<li>start with a Debian machine running Stretch or newer,</li> + +<li>build and install the gr-gsm package available from +<a href="http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/">http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/</a>,</li> + +<li>clone the git repostory from <a href="https://github.com/Oros42/IMSI-catcher">https://github.com/Oros42/IMSI-catcher</a>,</li> + +<li>run grgsm_livemon and adjust the frequency until the terminal +where it was started is filled with a stream of text (meaning you +found a GSM station).</li> + +<li>go into the IMSI-catcher directory and run 'sudo python simple_IMSI-catcher.py' to extract the IMSI numbers.</li> + +</ol> + +To make it even easier in the future to get this sniffer up and +running, I decided to package +<a href="https://github.com/ptrkrysik/gr-gsm/">the gr-gsm project</a> +for Debian (<a href="https://bugs.debian.org/871055">WNPP +#871055</a>), and the package was uploaded into the NEW queue today. +Luckily the gnuradio maintainer has promised to help me, as I do not +know much about gnuradio stuff yet. + +I doubt this "IMSI cacher" is anywhere near as powerfull as +commercial tools like +<a href="https://www.thespyphone.com/portable-imsi-imei-catcher/">The +Spy Phone Portable IMSI / IMEI Catcher</a> or the +<a href="https://en.wikipedia.org/wiki/Stingray_phone_tracker">Harris +Stingray</a>, but I hope the existance of cheap alternatives can make +more people realise how their whereabouts when carrying a cell phone +is easily tracked. Seeing the data flow on the screen, realizing that +I live close to a police station and knowing that the police is also +wearing cell phones, I wonder how hard it would be for criminals to +track the position of the police officers to discover when there are +police near by, or for foreign military forces to track the location +of the Norwegian military forces, or for anyone to track the location +of government officials... + +It is worth noting that the data reported by the IMSI-catcher +script mentioned above is only a fraction of the data broadcasted on +the GSM network. It will only collect one frequency at the time, +while a typical phone will be using several frequencies, and not all +phones will be using the frequencies tracked by the grgsm_livemod +program. Also, there is a lot of radio chatter being ignored by the +simple_IMSI-catcher script, which would be collected by extending the +parser code. I wonder if gr-gsm can be set up to listen to more than +one frequency? + + + Norwegian BokmÃ¥l edition of Debian Administrator's Handbook is now available http://people.skolelinux.org/pere/blog/Norwegian_Bokm_l_edition_of_Debian_Administrator_s_Handbook_is_now_available.html @@ -553,114 +644,5 @@ implemented in Python. - - Detecting NFS hangs on Linux without hanging yourself... - http://people.skolelinux.org/pere/blog/Detecting_NFS_hangs_on_Linux_without_hanging_yourself___.html - http://people.skolelinux.org/pere/blog/Detecting_NFS_hangs_on_Linux_without_hanging_yourself___.html - Thu, 9 Mar 2017 15:20:00 +0100 - Over the years, administrating thousand of NFS mounting linux -computers at the time, I often needed a way to detect if the machine -was experiencing NFS hang. If you try to use <tt>df</tt> or look at a -file or directory affected by the hang, the process (and possibly the -shell) will hang too. So you want to be able to detect this without -risking the detection process getting stuck too. It has not been -obvious how to do this. When the hang has lasted a while, it is -possible to find messages like these in dmesg: - -<blockquote> -nfs: server nfsserver not responding, still trying - nfs: server nfsserver OK -</blockquote> - -It is hard to know if the hang is still going on, and it is hard to -be sure looking in dmesg is going to work. If there are lots of other -messages in dmesg the lines might have rotated out of site before they -are noticed. - -While reading through the nfs client implementation in linux kernel -code, I came across some statistics that seem to give a way to detect -it. The om_timeouts sunrpc value in the kernel will increase every -time the above log entry is inserted into dmesg. And after digging a -bit further, I discovered that this value show up in -/proc/self/mountstats on Linux. - -The mountstats content seem to be shared between files using the -same file system context, so it is enough to check one of the -mountstats files to get the state of the mount point for the machine. -I assume this will not show lazy umounted NFS points, nor NFS mount -points in a different process context (ie with a different filesystem -view), but that does not worry me. - -The content for a NFS mount point look similar to this: - -<blockquote><pre> -[...] -device /dev/mapper/Debian-var mounted on /var with fstype ext3 -device nfsserver:/mnt/nfsserver/home0 mounted on /mnt/nfsserver/home0 with fstype nfs statvers=1.1 - opts: rw,vers=3,rsize=65536,wsize=65536,namlen=255,acregmin=3,acregmax=60,acdirmin=30,acdirmax=60,soft,nolock,proto=tcp,timeo=600,retrans=2,sec=sys,mountaddr=129.240.3.145,mountvers=3,mountport=4048,mountproto=udp,local_lock=all - age: 7863311 - caps: caps=0x3fe7,wtmult=4096,dtsize=8192,bsize=0,namlen=255 - sec: flavor=1,pseudoflavor=1 - events: 61063112 732346265 1028140 35486205 16220064 8162542 761447191 71714012 37189 3891185 45561809 110486139 4850138 420353 15449177 296502 52736725 13523379 0 52182 9016896 1231 0 0 0 0 0 - bytes: 166253035039 219519120027 0 0 40783504807 185466229638 11677877 45561809 - RPC iostats version: 1.0 p/v: 100003/3 (nfs) - xprt: tcp 925 1 6810 0 0 111505412 111480497 109 2672418560317 0 248 53869103 22481820 - per-op statistics - NULL: 0 0 0 0 0 0 0 0 - GETATTR: 61063106 61063108 0 9621383060 6839064400 453650 77291321 78926132 - SETATTR: 463469 463470 0 92005440 66739536 63787 603235 687943 - LOOKUP: 17021657 17021657 0 3354097764 4013442928 57216 35125459 35566511 - ACCESS: 14281703 14290009 5 2318400592 1713803640 1709282 4865144 7130140 - READLINK: 125 125 0 20472 18620 0 1112 1118 - READ: 4214236 4214237 0 715608524 41328653212 89884 22622768 22806693 - WRITE: 8479010 8494376 22 187695798568 1356087148 178264904 51506907 231671771 - CREATE: 171708 171708 0 38084748 46702272 873 1041833 1050398 - MKDIR: 3680 3680 0 773980 993920 26 23990 24245 - SYMLINK: 903 903 0 233428 245488 6 5865 5917 - MKNOD: 80 80 0 20148 21760 0 299 304 - REMOVE: 429921 429921 0 79796004 61908192 3313 2710416 2741636 - RMDIR: 3367 3367 0 645112 484848 22 5782 6002 - RENAME: 466201 466201 0 130026184 121212260 7075 5935207 5961288 - LINK: 289155 289155 0 72775556 67083960 2199 2565060 2585579 - READDIR: 2933237 2933237 0 516506204 13973833412 10385 3190199 3297917 - READDIRPLUS: 1652839 1652839 0 298640972 6895997744 84735 14307895 14448937 - FSSTAT: 6144 6144 0 1010516 1032192 51 9654 10022 - FSINFO: 2 2 0 232 328 0 1 1 - PATHCONF: 1 1 0 116 140 0 0 0 - COMMIT: 0 0 0 0 0 0 0 0 - -device binfmt_misc mounted on /proc/sys/fs/binfmt_misc with fstype binfmt_misc -[...] -</pre></blockquote> - -The key number to look at is the third number in the per-op list. -It is the number of NFS timeouts experiences per file system -operation. Here 22 write timeouts and 5 access timeouts. If these -numbers are increasing, I believe the machine is experiencing NFS -hang. Unfortunately the timeout value do not start to increase right -away. The NFS operations need to time out first, and this can take a -while. The exact timeout value depend on the setup. For example the -defaults for TCP and UDP mount points are quite different, and the -timeout value is affected by the soft, hard, timeo and retrans NFS -mount options. - -The only way I have been able to get working on Debian and RedHat -Enterprise Linux for getting the timeout count is to peek in /proc/. -But according to -<ahref="http://docs.oracle.com/cd/E19253-01/816-4555/netmonitor-12/index.html">Solaris -10 System Administration Guide: Network Services</a>, the 'nfsstat -c' -command can be used to get these timeout values. But this do not work -on Linux, as far as I can tell. I -<ahref="http://bugs.debian.org/857043">asked Debian about this</a>, -but have not seen any replies yet. - -Is there a better way to figure out if a Linux NFS client is -experiencing NFS hangs? Is there a way to detect which processes are -affected? Is there a way to get the NFS mount going quickly once the -network problem causing the NFS hang has been cleared? I would very -much welcome some clues, as we regularly run into NFS hangs. - - - diff --git a/blog/jXplorer__a_very_nice_LDAP_GUI.html b/blog/jXplorer__a_very_nice_LDAP_GUI.html index 093c4da069..2f41305a1f 100644 --- a/blog/jXplorer__a_very_nice_LDAP_GUI.html +++ b/blog/jXplorer__a_very_nice_LDAP_GUI.html @@ -68,6 +68,8 @@ and remove the failing query. Nothing big, but very annoying.

July (1)

August (1)

2016 @@ -334,7 +336,7 @@ and remove the failing query. Nothing big, but very annoying.

@@ -348,7 +350,7 @@ and remove the failing query. Nothing big, but very annoying.

@@ -392,7 +394,7 @@ and remove the failing query. Nothing big, but very annoying.

@@ -422,7 +424,7 @@ and remove the failing query. Nothing big, but very annoying.

diff --git a/blog/listadmin__the_quick_way_to_moderate_mailman_lists___nice_free_software.html b/blog/listadmin__the_quick_way_to_moderate_mailman_lists___nice_free_software.html index 1410e22501..456501327a 100644 --- a/blog/listadmin__the_quick_way_to_moderate_mailman_lists___nice_free_software.html +++ b/blog/listadmin__the_quick_way_to_moderate_mailman_lists___nice_free_software.html @@ -137,6 +137,8 @@ sure why.

July (1)

August (1)

2016 @@ -403,7 +405,7 @@ sure why.

@@ -417,7 +419,7 @@ sure why.

@@ -461,7 +463,7 @@ sure why.

@@ -491,7 +493,7 @@ sure why.

diff --git a/blog/sitemap.xml b/blog/sitemap.xml index 626fa12f7c..dfae399843 100644 --- a/blog/sitemap.xml +++ b/blog/sitemap.xml @@ -2510,6 +2510,11 @@ 0.50 weekly + + http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html + 0.50 + weekly + http://people.skolelinux.org/pere/blog/Sitesummary_tip__Listing_computer_hardware_models_used_at_site.html 0.50 diff --git a/blog/syslog_trusted_timestamp___chain_of_trusted_timestamps_for_your_syslog.html b/blog/syslog_trusted_timestamp___chain_of_trusted_timestamps_for_your_syslog.html index df33b3cbd2..43c348bb7f 100644 --- a/blog/syslog_trusted_timestamp___chain_of_trusted_timestamps_for_your_syslog.html +++ b/blog/syslog_trusted_timestamp___chain_of_trusted_timestamps_for_your_syslog.html @@ -161,6 +161,8 @@ activities, please send Bitcoin donations to my address

July (1)

August (1)

2016 @@ -427,7 +429,7 @@ activities, please send Bitcoin donations to my address

@@ -441,7 +443,7 @@ activities, please send Bitcoin donations to my address

@@ -485,7 +487,7 @@ activities, please send Bitcoin donations to my address

@@ -515,7 +517,7 @@ activities, please send Bitcoin donations to my address

diff --git a/blog/systemd__an_interesting_alternative_to_upstart.html b/blog/systemd__an_interesting_alternative_to_upstart.html index 96d51bba9f..8f27396de3 100644 --- a/blog/systemd__an_interesting_alternative_to_upstart.html +++ b/blog/systemd__an_interesting_alternative_to_upstart.html @@ -86,6 +86,8 @@ with parallel booting enabled by default.

July (1)

August (1)

2016 @@ -352,7 +354,7 @@ with parallel booting enabled by default.

@@ -366,7 +368,7 @@ with parallel booting enabled by default.

@@ -410,7 +412,7 @@ with parallel booting enabled by default.

@@ -440,7 +442,7 @@ with parallel booting enabled by default.

diff --git a/blog/tags/3d-printer/index.html b/blog/tags/3d-printer/index.html index f37e55d6ad..a713599779 100644 --- a/blog/tags/3d-printer/index.html +++ b/blog/tags/3d-printer/index.html @@ -618,6 +618,8 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

July (1)

August (1)

2016 @@ -884,7 +886,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

@@ -898,7 +900,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

@@ -942,7 +944,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

@@ -972,7 +974,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

diff --git a/blog/tags/amiga/index.html b/blog/tags/amiga/index.html index 8c6d18ae4b..78b56b12ee 100644 --- a/blog/tags/amiga/index.html +++ b/blog/tags/amiga/index.html @@ -72,6 +72,8 @@ pakke. Kanskje Aros kunne vÃ¦rt interessant for et NUUG-foredrag?

July (1)

August (1)

2016 @@ -338,7 +340,7 @@ pakke. Kanskje Aros kunne vÃ¦rt interessant for et NUUG-foredrag?

@@ -352,7 +354,7 @@ pakke. Kanskje Aros kunne vÃ¦rt interessant for et NUUG-foredrag?

@@ -396,7 +398,7 @@ pakke. Kanskje Aros kunne vÃ¦rt interessant for et NUUG-foredrag?

@@ -426,7 +428,7 @@ pakke. Kanskje Aros kunne vÃ¦rt interessant for et NUUG-foredrag?

diff --git a/blog/tags/aros/index.html b/blog/tags/aros/index.html index 695e9338bc..99fc818639 100644 --- a/blog/tags/aros/index.html +++ b/blog/tags/aros/index.html @@ -72,6 +72,8 @@ pakke. Kanskje Aros kunne vÃ¦rt interessant for et NUUG-foredrag?

July (1)

August (1)

2016 @@ -338,7 +340,7 @@ pakke. Kanskje Aros kunne vÃ¦rt interessant for et NUUG-foredrag?

@@ -352,7 +354,7 @@ pakke. Kanskje Aros kunne vÃ¦rt interessant for et NUUG-foredrag?

@@ -396,7 +398,7 @@ pakke. Kanskje Aros kunne vÃ¦rt interessant for et NUUG-foredrag?

@@ -426,7 +428,7 @@ pakke. Kanskje Aros kunne vÃ¦rt interessant for et NUUG-foredrag?

diff --git a/blog/tags/bankid/index.html b/blog/tags/bankid/index.html index f894f7a43a..f40bfee39c 100644 --- a/blog/tags/bankid/index.html +++ b/blog/tags/bankid/index.html @@ -484,6 +484,8 @@ omtalt over. Anbefalt lesning.

July (1)

August (1)

2016 @@ -750,7 +752,7 @@ omtalt over. Anbefalt lesning.

@@ -764,7 +766,7 @@ omtalt over. Anbefalt lesning.

@@ -808,7 +810,7 @@ omtalt over. Anbefalt lesning.

@@ -838,7 +840,7 @@ omtalt over. Anbefalt lesning.

diff --git a/blog/tags/bitcoin/index.html b/blog/tags/bitcoin/index.html index 5a8783f356..e91db434e9 100644 --- a/blog/tags/bitcoin/index.html +++ b/blog/tags/bitcoin/index.html @@ -641,6 +641,8 @@ donations to the address

July (1)

August (1)

2016 @@ -907,7 +909,7 @@ donations to the address

@@ -921,7 +923,7 @@ donations to the address

@@ -965,7 +967,7 @@ donations to the address

@@ -995,7 +997,7 @@ donations to the address

diff --git a/blog/tags/bootsystem/index.html b/blog/tags/bootsystem/index.html index 169ec315b1..7fb3587c97 100644 --- a/blog/tags/bootsystem/index.html +++ b/blog/tags/bootsystem/index.html @@ -1284,6 +1284,8 @@ insserv'. Will need to test if that work. :)

July (1)

August (1)

2016 @@ -1550,7 +1552,7 @@ insserv'. Will need to test if that work. :)

@@ -1564,7 +1566,7 @@ insserv'. Will need to test if that work. :)

@@ -1608,7 +1610,7 @@ insserv'. Will need to test if that work. :)

@@ -1638,7 +1640,7 @@ insserv'. Will need to test if that work. :)

diff --git a/blog/tags/bsa/index.html b/blog/tags/bsa/index.html index aaf7b5e4b0..42b7169f3a 100644 --- a/blog/tags/bsa/index.html +++ b/blog/tags/bsa/index.html @@ -160,6 +160,8 @@ pÃ¥ Slashdot.

July (1)

August (1)

2016 @@ -426,7 +428,7 @@ pÃ¥ Slashdot.

@@ -440,7 +442,7 @@ pÃ¥ Slashdot.

@@ -484,7 +486,7 @@ pÃ¥ Slashdot.

@@ -514,7 +516,7 @@ pÃ¥ Slashdot.

diff --git a/blog/tags/chrpath/index.html b/blog/tags/chrpath/index.html index 2aea7627e6..7f700f303d 100644 --- a/blog/tags/chrpath/index.html +++ b/blog/tags/chrpath/index.html @@ -167,6 +167,8 @@ include a testsuite check.

July (1)

August (1)

2016 @@ -433,7 +435,7 @@ include a testsuite check.

@@ -447,7 +449,7 @@ include a testsuite check.

@@ -491,7 +493,7 @@ include a testsuite check.

@@ -521,7 +523,7 @@ include a testsuite check.

diff --git a/blog/tags/debian edu/index.html b/blog/tags/debian edu/index.html index c23f5c884c..dd14dbea43 100644 --- a/blog/tags/debian edu/index.html +++ b/blog/tags/debian edu/index.html @@ -14960,6 +14960,8 @@ be the only one fitting our needs. :/

July (1)

August (1)

2016 @@ -15226,7 +15228,7 @@ be the only one fitting our needs. :/

@@ -15240,7 +15242,7 @@ be the only one fitting our needs. :/

@@ -15284,7 +15286,7 @@ be the only one fitting our needs. :/

@@ -15314,7 +15316,7 @@ be the only one fitting our needs. :/

diff --git a/blog/tags/debian-handbook/index.html b/blog/tags/debian-handbook/index.html index 2206bd55ca..bb1829fd88 100644 --- a/blog/tags/debian-handbook/index.html +++ b/blog/tags/debian-handbook/index.html @@ -207,6 +207,8 @@ available for many more languages.

July (1)

August (1)

2016 @@ -473,7 +475,7 @@ available for many more languages.

@@ -487,7 +489,7 @@ available for many more languages.

@@ -531,7 +533,7 @@ available for many more languages.

@@ -561,7 +563,7 @@ available for many more languages.

diff --git a/blog/tags/debian/debian.rss b/blog/tags/debian/debian.rss index 70ed136808..98063a6902 100644 --- a/blog/tags/debian/debian.rss +++ b/blog/tags/debian/debian.rss @@ -6,6 +6,97 @@ http://people.skolelinux.org/pere/blog/ + + Simpler recipe on how to make a simple $7 IMSI Catcher using Debian + http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html + http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html + Wed, 9 Aug 2017 23:59:00 +0200 + On friday, I came across an interesting article in the Norwegian +web based ICT news magazine digi.no on +<a href="https://www.digi.no/artikler/sikkerhetsforsker-lagde-enkel-imsi-catcher-for-60-kroner-na-kan-mobiler-kartlegges-av-alle/398588">how +to collect the IMSI numbers of nearby cell phones</a> using the cheap +DVB-T software defined radios. The article refered to instructions +and <a href="https://www.youtube.com/watch?v=UjwgNd_as30">a recipe by +Keld Norman on Youtube on how to make a simple $7 IMSI Catcher</a>, and I decided to test them out. + +The instructions said to use Ubuntu, install pip using apt (to +bypass apt), use pip to install pybombs (to bypass both apt and pip), +and the ask pybombs to fetch and build everything you need from +scratch. I wanted to see if I could do the same on the most recent +Debian packages, but this did not work because pybombs tried to build +stuff that no longer build with the most recent openssl library or +some other version skew problem. While trying to get this recipe +working, I learned that the apt->pip->pybombs route was a long detour, +and the only piece of software dependency missing in Debian was the +gr-gsm package. I also found out that the lead upstream developer of +gr-gsm (the name stand for GNU Radio GSM) project already had a set of +Debian packages provided in an Ubuntu PPA repository. All I needed to +do was to dget the Debian source package and built it. + +The IMSI collector is a python script listening for packages on the +loopback network device and printing to the terminal some specific GSM +packages with IMSI numbers in them. The code is fairly short and easy +to understand. The reason this work is because gr-gsm include a tool +to read GSM data from a software defined radio like a DVB-T USB stick +and other software defined radios, decode them and inject them into a +network device on your Linux machine (using the loopback device by +default). This proved to work just fine, and I've been testing the +collector for a few days now. + +The updated and simpler recipe is thus to + +<ol> + +<li>start with a Debian machine running Stretch or newer,</li> + +<li>build and install the gr-gsm package available from +<a href="http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/">http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/</a>,</li> + +<li>clone the git repostory from <a href="https://github.com/Oros42/IMSI-catcher">https://github.com/Oros42/IMSI-catcher</a>,</li> + +<li>run grgsm_livemon and adjust the frequency until the terminal +where it was started is filled with a stream of text (meaning you +found a GSM station).</li> + +<li>go into the IMSI-catcher directory and run 'sudo python simple_IMSI-catcher.py' to extract the IMSI numbers.</li> + +</ol> + +To make it even easier in the future to get this sniffer up and +running, I decided to package +<a href="https://github.com/ptrkrysik/gr-gsm/">the gr-gsm project</a> +for Debian (<a href="https://bugs.debian.org/871055">WNPP +#871055</a>), and the package was uploaded into the NEW queue today. +Luckily the gnuradio maintainer has promised to help me, as I do not +know much about gnuradio stuff yet. + +I doubt this "IMSI cacher" is anywhere near as powerfull as +commercial tools like +<a href="https://www.thespyphone.com/portable-imsi-imei-catcher/">The +Spy Phone Portable IMSI / IMEI Catcher</a> or the +<a href="https://en.wikipedia.org/wiki/Stingray_phone_tracker">Harris +Stingray</a>, but I hope the existance of cheap alternatives can make +more people realise how their whereabouts when carrying a cell phone +is easily tracked. Seeing the data flow on the screen, realizing that +I live close to a police station and knowing that the police is also +wearing cell phones, I wonder how hard it would be for criminals to +track the position of the police officers to discover when there are +police near by, or for foreign military forces to track the location +of the Norwegian military forces, or for anyone to track the location +of government officials... + +It is worth noting that the data reported by the IMSI-catcher +script mentioned above is only a fraction of the data broadcasted on +the GSM network. It will only collect one frequency at the time, +while a typical phone will be using several frequencies, and not all +phones will be using the frequencies tracked by the grgsm_livemod +program. Also, there is a lot of radio chatter being ignored by the +simple_IMSI-catcher script, which would be collected by extending the +parser code. I wonder if gr-gsm can be set up to listen to more than +one frequency? + + + Norwegian BokmÃ¥l edition of Debian Administrator's Handbook is now available http://people.skolelinux.org/pere/blog/Norwegian_Bokm_l_edition_of_Debian_Administrator_s_Handbook_is_now_available.html diff --git a/blog/tags/debian/index.html b/blog/tags/debian/index.html index b364ad4e92..58ab322d54 100644 --- a/blog/tags/debian/index.html +++ b/blog/tags/debian/index.html @@ -20,6 +20,109 @@

Entries tagged "debian".

+ Simpler recipe on how to make a simple $7 IMSI Catcher using Debian +

+ 9th August 2017 +

On friday, I came across an interesting article in the Norwegian +web based ICT news magazine digi.no on +how +to collect the IMSI numbers of nearby cell phones using the cheap +DVB-T software defined radios. The article refered to instructions +and a recipe by +Keld Norman on Youtube on how to make a simple $7 IMSI Catcher, and I decided to test them out.

+ +

The instructions said to use Ubuntu, install pip using apt (to +bypass apt), use pip to install pybombs (to bypass both apt and pip), +and the ask pybombs to fetch and build everything you need from +scratch. I wanted to see if I could do the same on the most recent +Debian packages, but this did not work because pybombs tried to build +stuff that no longer build with the most recent openssl library or +some other version skew problem. While trying to get this recipe +working, I learned that the apt->pip->pybombs route was a long detour, +and the only piece of software dependency missing in Debian was the +gr-gsm package. I also found out that the lead upstream developer of +gr-gsm (the name stand for GNU Radio GSM) project already had a set of +Debian packages provided in an Ubuntu PPA repository. All I needed to +do was to dget the Debian source package and built it.

+ +

The IMSI collector is a python script listening for packages on the +loopback network device and printing to the terminal some specific GSM +packages with IMSI numbers in them. The code is fairly short and easy +to understand. The reason this work is because gr-gsm include a tool +to read GSM data from a software defined radio like a DVB-T USB stick +and other software defined radios, decode them and inject them into a +network device on your Linux machine (using the loopback device by +default). This proved to work just fine, and I've been testing the +collector for a few days now.

+ +

The updated and simpler recipe is thus to

+ +

start with a Debian machine running Stretch or newer,
build and install the gr-gsm package available from +http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/,
clone the git repostory from https://github.com/Oros42/IMSI-catcher,
run grgsm_livemon and adjust the frequency until the terminal +where it was started is filled with a stream of text (meaning you +found a GSM station).
go into the IMSI-catcher directory and run 'sudo python simple_IMSI-catcher.py' to extract the IMSI numbers.

+ +

To make it even easier in the future to get this sniffer up and +running, I decided to package +the gr-gsm project +for Debian (WNPP +#871055), and the package was uploaded into the NEW queue today. +Luckily the gnuradio maintainer has promised to help me, as I do not +know much about gnuradio stuff yet.

+ +

I doubt this "IMSI cacher" is anywhere near as powerfull as +commercial tools like +The +Spy Phone Portable IMSI / IMEI Catcher or the +Harris +Stingray, but I hope the existance of cheap alternatives can make +more people realise how their whereabouts when carrying a cell phone +is easily tracked. Seeing the data flow on the screen, realizing that +I live close to a police station and knowing that the police is also +wearing cell phones, I wonder how hard it would be for criminals to +track the position of the police officers to discover when there are +police near by, or for foreign military forces to track the location +of the Norwegian military forces, or for anyone to track the location +of government officials...

+ +

It is worth noting that the data reported by the IMSI-catcher +script mentioned above is only a fraction of the data broadcasted on +the GSM network. It will only collect one frequency at the time, +while a typical phone will be using several frequencies, and not all +phones will be using the frequencies tracked by the grgsm_livemod +program. Also, there is a lot of radio chatter being ignored by the +simple_IMSI-catcher script, which would be collected by extending the +parser code. I wonder if gr-gsm can be set up to listen to more than +one frequency?

+ +

+ + + Tags: debian, english, personvern, surveillance. + + +

Norwegian BokmÃ¥l edition of Debian Administrator's Handbook is now available @@ -12443,6 +12546,8 @@ be the only one fitting our needs. :/

July (1)

August (1)

2016 @@ -12709,7 +12814,7 @@ be the only one fitting our needs. :/

@@ -12723,7 +12828,7 @@ be the only one fitting our needs. :/

@@ -12767,7 +12872,7 @@ be the only one fitting our needs. :/

@@ -12797,7 +12902,7 @@ be the only one fitting our needs. :/

diff --git a/blog/tags/digistan/index.html b/blog/tags/digistan/index.html index 87a59a0119..8610ce18fa 100644 --- a/blog/tags/digistan/index.html +++ b/blog/tags/digistan/index.html @@ -1259,6 +1259,8 @@ produkter basert pÃ¥ standarden.

July (1)

August (1)

2016 @@ -1525,7 +1527,7 @@ produkter basert pÃ¥ standarden.

@@ -1539,7 +1541,7 @@ produkter basert pÃ¥ standarden.

@@ -1583,7 +1585,7 @@ produkter basert pÃ¥ standarden.

@@ -1613,7 +1615,7 @@ produkter basert pÃ¥ standarden.

diff --git a/blog/tags/dld/index.html b/blog/tags/dld/index.html index 5f89a4da12..16febf612d 100644 --- a/blog/tags/dld/index.html +++ b/blog/tags/dld/index.html @@ -1539,6 +1539,8 @@ fÃ¥r snart se om det stemmer.

July (1)

August (1)

2016 @@ -1805,7 +1807,7 @@ fÃ¥r snart se om det stemmer.

@@ -1819,7 +1821,7 @@ fÃ¥r snart se om det stemmer.

@@ -1863,7 +1865,7 @@ fÃ¥r snart se om det stemmer.

@@ -1893,7 +1895,7 @@ fÃ¥r snart se om det stemmer.

diff --git a/blog/tags/docbook/index.html b/blog/tags/docbook/index.html index 666b79f3d7..6265242cfe 100644 --- a/blog/tags/docbook/index.html +++ b/blog/tags/docbook/index.html @@ -1663,6 +1663,8 @@ slik at du kan oppdatere direkte.

July (1)

August (1)

2016 @@ -1929,7 +1931,7 @@ slik at du kan oppdatere direkte.

@@ -1943,7 +1945,7 @@ slik at du kan oppdatere direkte.

@@ -1987,7 +1989,7 @@ slik at du kan oppdatere direkte.

@@ -2017,7 +2019,7 @@ slik at du kan oppdatere direkte.

diff --git a/blog/tags/drivstoffpriser/index.html b/blog/tags/drivstoffpriser/index.html index b083614e8d..18f6843901 100644 --- a/blog/tags/drivstoffpriser/index.html +++ b/blog/tags/drivstoffpriser/index.html @@ -501,6 +501,8 @@ en liste med stasjoner pÃ¥ samme format som PriserVedStasjoner.

July (1)

August (1)

2016 @@ -767,7 +769,7 @@ en liste med stasjoner pÃ¥ samme format som PriserVedStasjoner.

@@ -781,7 +783,7 @@ en liste med stasjoner pÃ¥ samme format som PriserVedStasjoner.

@@ -825,7 +827,7 @@ en liste med stasjoner pÃ¥ samme format som PriserVedStasjoner.

@@ -855,7 +857,7 @@ en liste med stasjoner pÃ¥ samme format som PriserVedStasjoner.

diff --git a/blog/tags/english/english.rss b/blog/tags/english/english.rss index 17a7d6ac5a..3dea076cb5 100644 --- a/blog/tags/english/english.rss +++ b/blog/tags/english/english.rss @@ -6,6 +6,97 @@ http://people.skolelinux.org/pere/blog/ + + Simpler recipe on how to make a simple $7 IMSI Catcher using Debian + http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html + http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html + Wed, 9 Aug 2017 23:59:00 +0200 + On friday, I came across an interesting article in the Norwegian +web based ICT news magazine digi.no on +<a href="https://www.digi.no/artikler/sikkerhetsforsker-lagde-enkel-imsi-catcher-for-60-kroner-na-kan-mobiler-kartlegges-av-alle/398588">how +to collect the IMSI numbers of nearby cell phones</a> using the cheap +DVB-T software defined radios. The article refered to instructions +and <a href="https://www.youtube.com/watch?v=UjwgNd_as30">a recipe by +Keld Norman on Youtube on how to make a simple $7 IMSI Catcher</a>, and I decided to test them out. + +The instructions said to use Ubuntu, install pip using apt (to +bypass apt), use pip to install pybombs (to bypass both apt and pip), +and the ask pybombs to fetch and build everything you need from +scratch. I wanted to see if I could do the same on the most recent +Debian packages, but this did not work because pybombs tried to build +stuff that no longer build with the most recent openssl library or +some other version skew problem. While trying to get this recipe +working, I learned that the apt->pip->pybombs route was a long detour, +and the only piece of software dependency missing in Debian was the +gr-gsm package. I also found out that the lead upstream developer of +gr-gsm (the name stand for GNU Radio GSM) project already had a set of +Debian packages provided in an Ubuntu PPA repository. All I needed to +do was to dget the Debian source package and built it. + +The IMSI collector is a python script listening for packages on the +loopback network device and printing to the terminal some specific GSM +packages with IMSI numbers in them. The code is fairly short and easy +to understand. The reason this work is because gr-gsm include a tool +to read GSM data from a software defined radio like a DVB-T USB stick +and other software defined radios, decode them and inject them into a +network device on your Linux machine (using the loopback device by +default). This proved to work just fine, and I've been testing the +collector for a few days now. + +The updated and simpler recipe is thus to + +<ol> + +<li>start with a Debian machine running Stretch or newer,</li> + +<li>build and install the gr-gsm package available from +<a href="http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/">http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/</a>,</li> + +<li>clone the git repostory from <a href="https://github.com/Oros42/IMSI-catcher">https://github.com/Oros42/IMSI-catcher</a>,</li> + +<li>run grgsm_livemon and adjust the frequency until the terminal +where it was started is filled with a stream of text (meaning you +found a GSM station).</li> + +<li>go into the IMSI-catcher directory and run 'sudo python simple_IMSI-catcher.py' to extract the IMSI numbers.</li> + +</ol> + +To make it even easier in the future to get this sniffer up and +running, I decided to package +<a href="https://github.com/ptrkrysik/gr-gsm/">the gr-gsm project</a> +for Debian (<a href="https://bugs.debian.org/871055">WNPP +#871055</a>), and the package was uploaded into the NEW queue today. +Luckily the gnuradio maintainer has promised to help me, as I do not +know much about gnuradio stuff yet. + +I doubt this "IMSI cacher" is anywhere near as powerfull as +commercial tools like +<a href="https://www.thespyphone.com/portable-imsi-imei-catcher/">The +Spy Phone Portable IMSI / IMEI Catcher</a> or the +<a href="https://en.wikipedia.org/wiki/Stingray_phone_tracker">Harris +Stingray</a>, but I hope the existance of cheap alternatives can make +more people realise how their whereabouts when carrying a cell phone +is easily tracked. Seeing the data flow on the screen, realizing that +I live close to a police station and knowing that the police is also +wearing cell phones, I wonder how hard it would be for criminals to +track the position of the police officers to discover when there are +police near by, or for foreign military forces to track the location +of the Norwegian military forces, or for anyone to track the location +of government officials... + +It is worth noting that the data reported by the IMSI-catcher +script mentioned above is only a fraction of the data broadcasted on +the GSM network. It will only collect one frequency at the time, +while a typical phone will be using several frequencies, and not all +phones will be using the frequencies tracked by the grgsm_livemod +program. Also, there is a lot of radio chatter being ignored by the +simple_IMSI-catcher script, which would be collected by extending the +parser code. I wonder if gr-gsm can be set up to listen to more than +one frequency? + + + Norwegian BokmÃ¥l edition of Debian Administrator's Handbook is now available http://people.skolelinux.org/pere/blog/Norwegian_Bokm_l_edition_of_Debian_Administrator_s_Handbook_is_now_available.html diff --git a/blog/tags/english/index.html b/blog/tags/english/index.html index 2443569c21..d17990f206 100644 --- a/blog/tags/english/index.html +++ b/blog/tags/english/index.html @@ -20,6 +20,109 @@

Entries tagged "english".

+ Simpler recipe on how to make a simple $7 IMSI Catcher using Debian +

+ 9th August 2017 +

+ +

The updated and simpler recipe is thus to

+ +

start with a Debian machine running Stretch or newer,
build and install the gr-gsm package available from +http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/,
clone the git repostory from https://github.com/Oros42/IMSI-catcher,
run grgsm_livemon and adjust the frequency until the terminal +where it was started is filled with a stream of text (meaning you +found a GSM station).
go into the IMSI-catcher directory and run 'sudo python simple_IMSI-catcher.py' to extract the IMSI numbers.

+ +

+ + + Tags: debian, english, personvern, surveillance. + + +

Norwegian BokmÃ¥l edition of Debian Administrator's Handbook is now available @@ -28453,6 +28556,8 @@ be the only one fitting our needs. :/

July (1)

August (1)

2016 @@ -28719,7 +28824,7 @@ be the only one fitting our needs. :/

@@ -28733,7 +28838,7 @@ be the only one fitting our needs. :/

@@ -28777,7 +28882,7 @@ be the only one fitting our needs. :/

@@ -28807,7 +28912,7 @@ be the only one fitting our needs. :/

diff --git a/blog/tags/fiksgatami/index.html b/blog/tags/fiksgatami/index.html index d62602bdcd..abdfbe7a63 100644 --- a/blog/tags/fiksgatami/index.html +++ b/blog/tags/fiksgatami/index.html @@ -1352,6 +1352,8 @@ med dem. Dette blir bra.

July (1)

August (1)

2016 @@ -1618,7 +1620,7 @@ med dem. Dette blir bra.

@@ -1632,7 +1634,7 @@ med dem. Dette blir bra.

@@ -1676,7 +1678,7 @@ med dem. Dette blir bra.

@@ -1706,7 +1708,7 @@ med dem. Dette blir bra.

diff --git a/blog/tags/fildeling/index.html b/blog/tags/fildeling/index.html index e995b938a5..cb37b22efc 100644 --- a/blog/tags/fildeling/index.html +++ b/blog/tags/fildeling/index.html @@ -645,6 +645,8 @@ og fildeling av slike filer er fullt ut lovlig.

July (1)

August (1)

2016 @@ -911,7 +913,7 @@ og fildeling av slike filer er fullt ut lovlig.

@@ -925,7 +927,7 @@ og fildeling av slike filer er fullt ut lovlig.

@@ -969,7 +971,7 @@ og fildeling av slike filer er fullt ut lovlig.

@@ -999,7 +1001,7 @@ og fildeling av slike filer er fullt ut lovlig.

diff --git a/blog/tags/freeculture/index.html b/blog/tags/freeculture/index.html index 6e9f216dfc..f6350b2bfc 100644 --- a/blog/tags/freeculture/index.html +++ b/blog/tags/freeculture/index.html @@ -2198,6 +2198,8 @@ slik at du kan oppdatere direkte.

July (1)

August (1)

2016 @@ -2464,7 +2466,7 @@ slik at du kan oppdatere direkte.

@@ -2478,7 +2480,7 @@ slik at du kan oppdatere direkte.

@@ -2522,7 +2524,7 @@ slik at du kan oppdatere direkte.

@@ -2552,7 +2554,7 @@ slik at du kan oppdatere direkte.

diff --git a/blog/tags/freedombox/index.html b/blog/tags/freedombox/index.html index db120d0076..3d496b694b 100644 --- a/blog/tags/freedombox/index.html +++ b/blog/tags/freedombox/index.html @@ -946,6 +946,8 @@ default password is 'secret'.

July (1)

August (1)

2016 @@ -1212,7 +1214,7 @@ default password is 'secret'.

@@ -1226,7 +1228,7 @@ default password is 'secret'.

@@ -1270,7 +1272,7 @@ default password is 'secret'.

@@ -1300,7 +1302,7 @@ default password is 'secret'.

diff --git a/blog/tags/frikanalen/index.html b/blog/tags/frikanalen/index.html index 93368213d0..a46d47bf3a 100644 --- a/blog/tags/frikanalen/index.html +++ b/blog/tags/frikanalen/index.html @@ -1432,6 +1432,8 @@ NUUG lykkes med Ã¥ fÃ¥ ut sine opptak med like stor suksess.

July (1)

August (1)

2016 @@ -1698,7 +1700,7 @@ NUUG lykkes med Ã¥ fÃ¥ ut sine opptak med like stor suksess.

@@ -1712,7 +1714,7 @@ NUUG lykkes med Ã¥ fÃ¥ ut sine opptak med like stor suksess.

@@ -1756,7 +1758,7 @@ NUUG lykkes med Ã¥ fÃ¥ ut sine opptak med like stor suksess.

@@ -1786,7 +1788,7 @@ NUUG lykkes med Ã¥ fÃ¥ ut sine opptak med like stor suksess.

diff --git a/blog/tags/h264/index.html b/blog/tags/h264/index.html index 3d960746f5..0d074a69d6 100644 --- a/blog/tags/h264/index.html +++ b/blog/tags/h264/index.html @@ -2518,6 +2518,8 @@ sure hope it was using the announced Ogg Theora support. :)

July (1)

August (1)

2016 @@ -2784,7 +2786,7 @@ sure hope it was using the announced Ogg Theora support. :)

@@ -2798,7 +2800,7 @@ sure hope it was using the announced Ogg Theora support. :)

@@ -2842,7 +2844,7 @@ sure hope it was using the announced Ogg Theora support. :)

@@ -2872,7 +2874,7 @@ sure hope it was using the announced Ogg Theora support. :)

diff --git a/blog/tags/intervju/index.html b/blog/tags/intervju/index.html index 2df639be09..c4696f6b4d 100644 --- a/blog/tags/intervju/index.html +++ b/blog/tags/intervju/index.html @@ -5140,6 +5140,8 @@ veldig bra utvalg av gratis spill som er av hÃ¸y kvalitet. Veldig lett

July (1)

August (1)

2016 @@ -5406,7 +5408,7 @@ veldig bra utvalg av gratis spill som er av hÃ¸y kvalitet. Veldig lett

@@ -5420,7 +5422,7 @@ veldig bra utvalg av gratis spill som er av hÃ¸y kvalitet. Veldig lett

@@ -5464,7 +5466,7 @@ veldig bra utvalg av gratis spill som er av hÃ¸y kvalitet. Veldig lett

@@ -5494,7 +5496,7 @@ veldig bra utvalg av gratis spill som er av hÃ¸y kvalitet. Veldig lett

diff --git a/blog/tags/isenkram/index.html b/blog/tags/isenkram/index.html index af6648fbe9..9cc00a402f 100644 --- a/blog/tags/isenkram/index.html +++ b/blog/tags/isenkram/index.html @@ -1600,6 +1600,8 @@ please send me an email. :)

July (1)

August (1)

2016 @@ -1866,7 +1868,7 @@ please send me an email. :)

@@ -1880,7 +1882,7 @@ please send me an email. :)

@@ -1924,7 +1926,7 @@ please send me an email. :)

@@ -1954,7 +1956,7 @@ please send me an email. :)

diff --git a/blog/tags/kart/index.html b/blog/tags/kart/index.html index 8d832114d2..0258612d00 100644 --- a/blog/tags/kart/index.html +++ b/blog/tags/kart/index.html @@ -1593,6 +1593,8 @@ det viser at behovet for fribruks-sjÃ¸kart er til stedet.

July (1)

August (1)

2016 @@ -1859,7 +1861,7 @@ det viser at behovet for fribruks-sjÃ¸kart er til stedet.

@@ -1873,7 +1875,7 @@ det viser at behovet for fribruks-sjÃ¸kart er til stedet.

@@ -1917,7 +1919,7 @@ det viser at behovet for fribruks-sjÃ¸kart er til stedet.

@@ -1947,7 +1949,7 @@ det viser at behovet for fribruks-sjÃ¸kart er til stedet.

diff --git a/blog/tags/ldap/index.html b/blog/tags/ldap/index.html index 1656e74b43..2c4fd44fc5 100644 --- a/blog/tags/ldap/index.html +++ b/blog/tags/ldap/index.html @@ -1062,6 +1062,8 @@ new IETF work group?

July (1)

August (1)

2016 @@ -1328,7 +1330,7 @@ new IETF work group?

@@ -1342,7 +1344,7 @@ new IETF work group?

@@ -1386,7 +1388,7 @@ new IETF work group?

@@ -1416,7 +1418,7 @@ new IETF work group?

diff --git a/blog/tags/lenker/index.html b/blog/tags/lenker/index.html index 2f29574995..75b45c79bb 100644 --- a/blog/tags/lenker/index.html +++ b/blog/tags/lenker/index.html @@ -657,6 +657,8 @@ Word 2007 hÃ¥ndterer ODF dÃ¥rlig

July (1)

August (1)

2016 @@ -923,7 +925,7 @@ Word 2007 hÃ¥ndterer ODF dÃ¥rlig

@@ -937,7 +939,7 @@ Word 2007 hÃ¥ndterer ODF dÃ¥rlig

@@ -981,7 +983,7 @@ Word 2007 hÃ¥ndterer ODF dÃ¥rlig

@@ -1011,7 +1013,7 @@ Word 2007 hÃ¥ndterer ODF dÃ¥rlig

diff --git a/blog/tags/lsdvd/index.html b/blog/tags/lsdvd/index.html index 49b5e0ffcf..b7e612eb6b 100644 --- a/blog/tags/lsdvd/index.html +++ b/blog/tags/lsdvd/index.html @@ -143,6 +143,8 @@ list. :)

July (1)

August (1)

2016 @@ -409,7 +411,7 @@ list. :)

@@ -423,7 +425,7 @@ list. :)

@@ -467,7 +469,7 @@ list. :)

@@ -497,7 +499,7 @@ list. :)

diff --git a/blog/tags/ltsp/index.html b/blog/tags/ltsp/index.html index 9a8b31b28a..f02d3727f2 100644 --- a/blog/tags/ltsp/index.html +++ b/blog/tags/ltsp/index.html @@ -77,6 +77,8 @@ of these cards.

July (1)

August (1)

2016 @@ -343,7 +345,7 @@ of these cards.

@@ -357,7 +359,7 @@ of these cards.

@@ -401,7 +403,7 @@ of these cards.

@@ -431,7 +433,7 @@ of these cards.

diff --git a/blog/tags/mesh network/index.html b/blog/tags/mesh network/index.html index 3a48a32db1..5935dd059b 100644 --- a/blog/tags/mesh network/index.html +++ b/blog/tags/mesh network/index.html @@ -727,6 +727,8 @@ mesh system.

July (1)

August (1)

2016 @@ -993,7 +995,7 @@ mesh system.

@@ -1007,7 +1009,7 @@ mesh system.

@@ -1051,7 +1053,7 @@ mesh system.

@@ -1081,7 +1083,7 @@ mesh system.

diff --git a/blog/tags/multimedia/index.html b/blog/tags/multimedia/index.html index c4089b4ba1..6b8137fae2 100644 --- a/blog/tags/multimedia/index.html +++ b/blog/tags/multimedia/index.html @@ -3306,6 +3306,8 @@ be the only one fitting our needs. :/

July (1)

August (1)

2016 @@ -3572,7 +3574,7 @@ be the only one fitting our needs. :/

@@ -3586,7 +3588,7 @@ be the only one fitting our needs. :/

@@ -3630,7 +3632,7 @@ be the only one fitting our needs. :/

@@ -3660,7 +3662,7 @@ be the only one fitting our needs. :/

diff --git a/blog/tags/nice free software/index.html b/blog/tags/nice free software/index.html index 63b83b45b4..d3fbf70661 100644 --- a/blog/tags/nice free software/index.html +++ b/blog/tags/nice free software/index.html @@ -1065,6 +1065,8 @@ section.

July (1)

August (1)

2016 @@ -1331,7 +1333,7 @@ section.

@@ -1345,7 +1347,7 @@ section.

@@ -1389,7 +1391,7 @@ section.

@@ -1419,7 +1421,7 @@ section.

diff --git a/blog/tags/norsk/index.html b/blog/tags/norsk/index.html index 70d433fe70..e632002fdf 100644 --- a/blog/tags/norsk/index.html +++ b/blog/tags/norsk/index.html @@ -26086,6 +26086,8 @@ forsÃ¸k.

July (1)

August (1)

2016 @@ -26352,7 +26354,7 @@ forsÃ¸k.

@@ -26366,7 +26368,7 @@ forsÃ¸k.

@@ -26410,7 +26412,7 @@ forsÃ¸k.

@@ -26440,7 +26442,7 @@ forsÃ¸k.

diff --git a/blog/tags/nuug/index.html b/blog/tags/nuug/index.html index b925c47d7e..c19ab94238 100644 --- a/blog/tags/nuug/index.html +++ b/blog/tags/nuug/index.html @@ -13486,6 +13486,8 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

July (1)

August (1)

2016 @@ -13752,7 +13754,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

@@ -13766,7 +13768,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

@@ -13810,7 +13812,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

@@ -13840,7 +13842,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

diff --git a/blog/tags/offentlig innsyn/index.html b/blog/tags/offentlig innsyn/index.html index e43650e776..75c8ab6de9 100644 --- a/blog/tags/offentlig innsyn/index.html +++ b/blog/tags/offentlig innsyn/index.html @@ -3938,6 +3938,8 @@ til Ã¥ levere hver uke. Har ikke undersÃ¸kt noen av de andre.

July (1)

August (1)

2016 @@ -4204,7 +4206,7 @@ til Ã¥ levere hver uke. Har ikke undersÃ¸kt noen av de andre.

@@ -4218,7 +4220,7 @@ til Ã¥ levere hver uke. Har ikke undersÃ¸kt noen av de andre.

@@ -4262,7 +4264,7 @@ til Ã¥ levere hver uke. Har ikke undersÃ¸kt noen av de andre.

@@ -4292,7 +4294,7 @@ til Ã¥ levere hver uke. Har ikke undersÃ¸kt noen av de andre.

diff --git a/blog/tags/open311/index.html b/blog/tags/open311/index.html index 93c0f043da..880ce17cbe 100644 --- a/blog/tags/open311/index.html +++ b/blog/tags/open311/index.html @@ -172,6 +172,8 @@ work like the free software project communities I am used to.

July (1)

August (1)

2016 @@ -438,7 +440,7 @@ work like the free software project communities I am used to.

@@ -452,7 +454,7 @@ work like the free software project communities I am used to.

@@ -496,7 +498,7 @@ work like the free software project communities I am used to.

@@ -526,7 +528,7 @@ work like the free software project communities I am used to.

diff --git a/blog/tags/opphavsrett/index.html b/blog/tags/opphavsrett/index.html index 002bffc74f..a62210b68d 100644 --- a/blog/tags/opphavsrett/index.html +++ b/blog/tags/opphavsrett/index.html @@ -7392,6 +7392,8 @@ database.

July (1)

August (1)

2016 @@ -7658,7 +7660,7 @@ database.

@@ -7672,7 +7674,7 @@ database.

@@ -7716,7 +7718,7 @@ database.

@@ -7746,7 +7748,7 @@ database.

diff --git a/blog/tags/personvern/index.html b/blog/tags/personvern/index.html index 53a03bd627..13e7e4fbff 100644 --- a/blog/tags/personvern/index.html +++ b/blog/tags/personvern/index.html @@ -20,6 +20,109 @@

Entries tagged "personvern".

+ Simpler recipe on how to make a simple $7 IMSI Catcher using Debian +

+ 9th August 2017 +

+ +

The updated and simpler recipe is thus to

+ +

start with a Debian machine running Stretch or newer,
build and install the gr-gsm package available from +http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/,
clone the git repostory from https://github.com/Oros42/IMSI-catcher,
run grgsm_livemon and adjust the frequency until the terminal +where it was started is filled with a stream of text (meaning you +found a GSM station).
go into the IMSI-catcher directory and run 'sudo python simple_IMSI-catcher.py' to extract the IMSI numbers.

+ +

+ + + Tags: debian, english, personvern, surveillance. + + +

Â«Rapporten ser ikke pÃ¥ informasjonssikkerhet knyttet til personlig integritetÂ» @@ -9579,6 +9682,8 @@ kontanter for noen dager siden.

July (1)

August (1)

2016 @@ -9845,7 +9950,7 @@ kontanter for noen dager siden.

@@ -9859,7 +9964,7 @@ kontanter for noen dager siden.

@@ -9903,7 +10008,7 @@ kontanter for noen dager siden.

@@ -9933,7 +10038,7 @@ kontanter for noen dager siden.

diff --git a/blog/tags/personvern/personvern.rss b/blog/tags/personvern/personvern.rss index 17247d557b..a3b8ceff1b 100644 --- a/blog/tags/personvern/personvern.rss +++ b/blog/tags/personvern/personvern.rss @@ -6,6 +6,97 @@ http://people.skolelinux.org/pere/blog/ + + Simpler recipe on how to make a simple $7 IMSI Catcher using Debian + http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html + http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html + Wed, 9 Aug 2017 23:59:00 +0200 + On friday, I came across an interesting article in the Norwegian +web based ICT news magazine digi.no on +<a href="https://www.digi.no/artikler/sikkerhetsforsker-lagde-enkel-imsi-catcher-for-60-kroner-na-kan-mobiler-kartlegges-av-alle/398588">how +to collect the IMSI numbers of nearby cell phones</a> using the cheap +DVB-T software defined radios. The article refered to instructions +and <a href="https://www.youtube.com/watch?v=UjwgNd_as30">a recipe by +Keld Norman on Youtube on how to make a simple $7 IMSI Catcher</a>, and I decided to test them out. + +The instructions said to use Ubuntu, install pip using apt (to +bypass apt), use pip to install pybombs (to bypass both apt and pip), +and the ask pybombs to fetch and build everything you need from +scratch. I wanted to see if I could do the same on the most recent +Debian packages, but this did not work because pybombs tried to build +stuff that no longer build with the most recent openssl library or +some other version skew problem. While trying to get this recipe +working, I learned that the apt->pip->pybombs route was a long detour, +and the only piece of software dependency missing in Debian was the +gr-gsm package. I also found out that the lead upstream developer of +gr-gsm (the name stand for GNU Radio GSM) project already had a set of +Debian packages provided in an Ubuntu PPA repository. All I needed to +do was to dget the Debian source package and built it. + +The IMSI collector is a python script listening for packages on the +loopback network device and printing to the terminal some specific GSM +packages with IMSI numbers in them. The code is fairly short and easy +to understand. The reason this work is because gr-gsm include a tool +to read GSM data from a software defined radio like a DVB-T USB stick +and other software defined radios, decode them and inject them into a +network device on your Linux machine (using the loopback device by +default). This proved to work just fine, and I've been testing the +collector for a few days now. + +The updated and simpler recipe is thus to + +<ol> + +<li>start with a Debian machine running Stretch or newer,</li> + +<li>build and install the gr-gsm package available from +<a href="http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/">http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/</a>,</li> + +<li>clone the git repostory from <a href="https://github.com/Oros42/IMSI-catcher">https://github.com/Oros42/IMSI-catcher</a>,</li> + +<li>run grgsm_livemon and adjust the frequency until the terminal +where it was started is filled with a stream of text (meaning you +found a GSM station).</li> + +<li>go into the IMSI-catcher directory and run 'sudo python simple_IMSI-catcher.py' to extract the IMSI numbers.</li> + +</ol> + +To make it even easier in the future to get this sniffer up and +running, I decided to package +<a href="https://github.com/ptrkrysik/gr-gsm/">the gr-gsm project</a> +for Debian (<a href="https://bugs.debian.org/871055">WNPP +#871055</a>), and the package was uploaded into the NEW queue today. +Luckily the gnuradio maintainer has promised to help me, as I do not +know much about gnuradio stuff yet. + +I doubt this "IMSI cacher" is anywhere near as powerfull as +commercial tools like +<a href="https://www.thespyphone.com/portable-imsi-imei-catcher/">The +Spy Phone Portable IMSI / IMEI Catcher</a> or the +<a href="https://en.wikipedia.org/wiki/Stingray_phone_tracker">Harris +Stingray</a>, but I hope the existance of cheap alternatives can make +more people realise how their whereabouts when carrying a cell phone +is easily tracked. Seeing the data flow on the screen, realizing that +I live close to a police station and knowing that the police is also +wearing cell phones, I wonder how hard it would be for criminals to +track the position of the police officers to discover when there are +police near by, or for foreign military forces to track the location +of the Norwegian military forces, or for anyone to track the location +of government officials... + +It is worth noting that the data reported by the IMSI-catcher +script mentioned above is only a fraction of the data broadcasted on +the GSM network. It will only collect one frequency at the time, +while a typical phone will be using several frequencies, and not all +phones will be using the frequencies tracked by the grgsm_livemod +program. Also, there is a lot of radio chatter being ignored by the +simple_IMSI-catcher script, which would be collected by extending the +parser code. I wonder if gr-gsm can be set up to listen to more than +one frequency? + + + Â«Rapporten ser ikke pÃ¥ informasjonssikkerhet knyttet til personlig integritetÂ» http://people.skolelinux.org/pere/blog/_Rapporten_ser_ikke_p__informasjonssikkerhet_knyttet_til_personlig_integritet_.html diff --git a/blog/tags/raid/index.html b/blog/tags/raid/index.html index 8d0e0ab6ad..bee0c2f7f8 100644 --- a/blog/tags/raid/index.html +++ b/blog/tags/raid/index.html @@ -113,6 +113,8 @@ disk(s) is failing when the RAID is running short on disks.

July (1)

August (1)

2016 @@ -379,7 +381,7 @@ disk(s) is failing when the RAID is running short on disks.

@@ -393,7 +395,7 @@ disk(s) is failing when the RAID is running short on disks.

@@ -437,7 +439,7 @@ disk(s) is failing when the RAID is running short on disks.

@@ -467,7 +469,7 @@ disk(s) is failing when the RAID is running short on disks.

diff --git a/blog/tags/reactos/index.html b/blog/tags/reactos/index.html index e6c8e52925..00fce90f69 100644 --- a/blog/tags/reactos/index.html +++ b/blog/tags/reactos/index.html @@ -112,6 +112,8 @@ image.

July (1)

August (1)

2016 @@ -378,7 +380,7 @@ image.

@@ -392,7 +394,7 @@ image.

@@ -436,7 +438,7 @@ image.

@@ -466,7 +468,7 @@ image.

diff --git a/blog/tags/reprap/index.html b/blog/tags/reprap/index.html index e8d1f97923..51c16c1b6f 100644 --- a/blog/tags/reprap/index.html +++ b/blog/tags/reprap/index.html @@ -539,6 +539,8 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

July (1)

August (1)

2016 @@ -805,7 +807,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

@@ -819,7 +821,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

@@ -863,7 +865,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

@@ -893,7 +895,7 @@ hÃ¥per det ikke gÃ¥r tapt pÃ¥ samme vis.

diff --git a/blog/tags/rfid/index.html b/blog/tags/rfid/index.html index 8413ac1d13..e4c1bd43bd 100644 --- a/blog/tags/rfid/index.html +++ b/blog/tags/rfid/index.html @@ -443,6 +443,8 @@ mer om de nye biometriske passene.

July (1)

August (1)

2016 @@ -709,7 +711,7 @@ mer om de nye biometriske passene.

@@ -723,7 +725,7 @@ mer om de nye biometriske passene.

@@ -767,7 +769,7 @@ mer om de nye biometriske passene.

@@ -797,7 +799,7 @@ mer om de nye biometriske passene.

diff --git a/blog/tags/robot/index.html b/blog/tags/robot/index.html index bfa8115cf9..bfbbe9ed26 100644 --- a/blog/tags/robot/index.html +++ b/blog/tags/robot/index.html @@ -549,6 +549,8 @@ firmwaren. :)

July (1)

August (1)

2016 @@ -815,7 +817,7 @@ firmwaren. :)

@@ -829,7 +831,7 @@ firmwaren. :)

@@ -873,7 +875,7 @@ firmwaren. :)

@@ -903,7 +905,7 @@ firmwaren. :)

diff --git a/blog/tags/rss/index.html b/blog/tags/rss/index.html index 065d0941cd..ac08b7adb6 100644 --- a/blog/tags/rss/index.html +++ b/blog/tags/rss/index.html @@ -66,6 +66,8 @@ forsÃ¸k.

July (1)

August (1)

2016 @@ -332,7 +334,7 @@ forsÃ¸k.

@@ -346,7 +348,7 @@ forsÃ¸k.

@@ -390,7 +392,7 @@ forsÃ¸k.

@@ -420,7 +422,7 @@ forsÃ¸k.

diff --git a/blog/tags/ruter/index.html b/blog/tags/ruter/index.html index 4c5f7db858..3c3914d8fa 100644 --- a/blog/tags/ruter/index.html +++ b/blog/tags/ruter/index.html @@ -285,6 +285,8 @@ OsloomrÃ¥det.

July (1)

August (1)

2016 @@ -551,7 +553,7 @@ OsloomrÃ¥det.

@@ -565,7 +567,7 @@ OsloomrÃ¥det.

@@ -609,7 +611,7 @@ OsloomrÃ¥det.

@@ -639,7 +641,7 @@ OsloomrÃ¥det.

diff --git a/blog/tags/scraperwiki/index.html b/blog/tags/scraperwiki/index.html index 02c1fd99d1..fc2431a5ee 100644 --- a/blog/tags/scraperwiki/index.html +++ b/blog/tags/scraperwiki/index.html @@ -155,6 +155,8 @@ av Ã¥ dele informasjon med andre uten bruksbegresninger.

July (1)

August (1)

2016 @@ -421,7 +423,7 @@ av Ã¥ dele informasjon med andre uten bruksbegresninger.

@@ -435,7 +437,7 @@ av Ã¥ dele informasjon med andre uten bruksbegresninger.

@@ -479,7 +481,7 @@ av Ã¥ dele informasjon med andre uten bruksbegresninger.

@@ -509,7 +511,7 @@ av Ã¥ dele informasjon med andre uten bruksbegresninger.

diff --git a/blog/tags/sikkerhet/index.html b/blog/tags/sikkerhet/index.html index b9d043ae41..d838eba20f 100644 --- a/blog/tags/sikkerhet/index.html +++ b/blog/tags/sikkerhet/index.html @@ -4325,6 +4325,8 @@ betydelige.

July (1)

August (1)

2016 @@ -4591,7 +4593,7 @@ betydelige.

@@ -4605,7 +4607,7 @@ betydelige.

@@ -4649,7 +4651,7 @@ betydelige.

@@ -4679,7 +4681,7 @@ betydelige.

diff --git a/blog/tags/sitesummary/index.html b/blog/tags/sitesummary/index.html index b6a6f0fee1..3271cec527 100644 --- a/blog/tags/sitesummary/index.html +++ b/blog/tags/sitesummary/index.html @@ -271,6 +271,8 @@ everything is taken care of.

July (1)

August (1)

2016 @@ -537,7 +539,7 @@ everything is taken care of.

@@ -551,7 +553,7 @@ everything is taken care of.

@@ -595,7 +597,7 @@ everything is taken care of.

@@ -625,7 +627,7 @@ everything is taken care of.

diff --git a/blog/tags/skepsis/index.html b/blog/tags/skepsis/index.html index e7d21ae9ab..17d9276c4a 100644 --- a/blog/tags/skepsis/index.html +++ b/blog/tags/skepsis/index.html @@ -451,6 +451,8 @@ skyskrapere. Takke meg til en tur til mÃ¥nen.

July (1)

August (1)

2016 @@ -717,7 +719,7 @@ skyskrapere. Takke meg til en tur til mÃ¥nen.

@@ -731,7 +733,7 @@ skyskrapere. Takke meg til en tur til mÃ¥nen.

@@ -775,7 +777,7 @@ skyskrapere. Takke meg til en tur til mÃ¥nen.

@@ -805,7 +807,7 @@ skyskrapere. Takke meg til en tur til mÃ¥nen.

diff --git a/blog/tags/standard/index.html b/blog/tags/standard/index.html index 45adc71d57..bdb3ea5d98 100644 --- a/blog/tags/standard/index.html +++ b/blog/tags/standard/index.html @@ -5059,6 +5059,8 @@ Kjenner kun til ufullstendige lÃ¸sninger for slikt.

July (1)

August (1)

2016 @@ -5325,7 +5327,7 @@ Kjenner kun til ufullstendige lÃ¸sninger for slikt.

@@ -5339,7 +5341,7 @@ Kjenner kun til ufullstendige lÃ¸sninger for slikt.

@@ -5383,7 +5385,7 @@ Kjenner kun til ufullstendige lÃ¸sninger for slikt.

@@ -5413,7 +5415,7 @@ Kjenner kun til ufullstendige lÃ¸sninger for slikt.

diff --git a/blog/tags/stavekontroll/index.html b/blog/tags/stavekontroll/index.html index aea9fc142b..5006adfeef 100644 --- a/blog/tags/stavekontroll/index.html +++ b/blog/tags/stavekontroll/index.html @@ -456,6 +456,8 @@ stavekontrollen.

July (1)

August (1)

2016 @@ -722,7 +724,7 @@ stavekontrollen.

@@ -736,7 +738,7 @@ stavekontrollen.

@@ -780,7 +782,7 @@ stavekontrollen.

@@ -810,7 +812,7 @@ stavekontrollen.

diff --git a/blog/tags/stortinget/index.html b/blog/tags/stortinget/index.html index 009faab78c..994ab436f8 100644 --- a/blog/tags/stortinget/index.html +++ b/blog/tags/stortinget/index.html @@ -1096,6 +1096,8 @@ at vi i NUUG har fÃ¥tt operativ en norsk utgave av

July (1)

August (1)

2016 @@ -1362,7 +1364,7 @@ at vi i NUUG har fÃ¥tt operativ en norsk utgave av

@@ -1376,7 +1378,7 @@ at vi i NUUG har fÃ¥tt operativ en norsk utgave av

@@ -1420,7 +1422,7 @@ at vi i NUUG har fÃ¥tt operativ en norsk utgave av

@@ -1450,7 +1452,7 @@ at vi i NUUG har fÃ¥tt operativ en norsk utgave av

diff --git a/blog/tags/surveillance/index.html b/blog/tags/surveillance/index.html index 87c2838c96..f094e1d684 100644 --- a/blog/tags/surveillance/index.html +++ b/blog/tags/surveillance/index.html @@ -20,6 +20,109 @@

Entries tagged "surveillance".

+ Simpler recipe on how to make a simple $7 IMSI Catcher using Debian +

+ 9th August 2017 +

+ +

The updated and simpler recipe is thus to

+ +

start with a Debian machine running Stretch or newer,
build and install the gr-gsm package available from +http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/,
clone the git repostory from https://github.com/Oros42/IMSI-catcher,
run grgsm_livemon and adjust the frequency until the terminal +where it was started is filled with a stream of text (meaning you +found a GSM station).
go into the IMSI-catcher directory and run 'sudo python simple_IMSI-catcher.py' to extract the IMSI numbers.

+ +

+ + + Tags: debian, english, personvern, surveillance. + + +

How does it feel to be wiretapped, when you should be doing the wiretapping... @@ -4454,6 +4557,8 @@ automatisk over i spesialkartet.

July (1)

August (1)

2016 @@ -4720,7 +4825,7 @@ automatisk over i spesialkartet.

@@ -4734,7 +4839,7 @@ automatisk over i spesialkartet.

@@ -4778,7 +4883,7 @@ automatisk over i spesialkartet.

@@ -4808,7 +4913,7 @@ automatisk over i spesialkartet.

diff --git a/blog/tags/surveillance/surveillance.rss b/blog/tags/surveillance/surveillance.rss index 48c449c132..5f8a3439ea 100644 --- a/blog/tags/surveillance/surveillance.rss +++ b/blog/tags/surveillance/surveillance.rss @@ -6,6 +6,97 @@ http://people.skolelinux.org/pere/blog/ + + Simpler recipe on how to make a simple $7 IMSI Catcher using Debian + http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html + http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html + Wed, 9 Aug 2017 23:59:00 +0200 + On friday, I came across an interesting article in the Norwegian +web based ICT news magazine digi.no on +<a href="https://www.digi.no/artikler/sikkerhetsforsker-lagde-enkel-imsi-catcher-for-60-kroner-na-kan-mobiler-kartlegges-av-alle/398588">how +to collect the IMSI numbers of nearby cell phones</a> using the cheap +DVB-T software defined radios. The article refered to instructions +and <a href="https://www.youtube.com/watch?v=UjwgNd_as30">a recipe by +Keld Norman on Youtube on how to make a simple $7 IMSI Catcher</a>, and I decided to test them out. + +The instructions said to use Ubuntu, install pip using apt (to +bypass apt), use pip to install pybombs (to bypass both apt and pip), +and the ask pybombs to fetch and build everything you need from +scratch. I wanted to see if I could do the same on the most recent +Debian packages, but this did not work because pybombs tried to build +stuff that no longer build with the most recent openssl library or +some other version skew problem. While trying to get this recipe +working, I learned that the apt->pip->pybombs route was a long detour, +and the only piece of software dependency missing in Debian was the +gr-gsm package. I also found out that the lead upstream developer of +gr-gsm (the name stand for GNU Radio GSM) project already had a set of +Debian packages provided in an Ubuntu PPA repository. All I needed to +do was to dget the Debian source package and built it. + +The IMSI collector is a python script listening for packages on the +loopback network device and printing to the terminal some specific GSM +packages with IMSI numbers in them. The code is fairly short and easy +to understand. The reason this work is because gr-gsm include a tool +to read GSM data from a software defined radio like a DVB-T USB stick +and other software defined radios, decode them and inject them into a +network device on your Linux machine (using the loopback device by +default). This proved to work just fine, and I've been testing the +collector for a few days now. + +The updated and simpler recipe is thus to + +<ol> + +<li>start with a Debian machine running Stretch or newer,</li> + +<li>build and install the gr-gsm package available from +<a href="http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/">http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/</a>,</li> + +<li>clone the git repostory from <a href="https://github.com/Oros42/IMSI-catcher">https://github.com/Oros42/IMSI-catcher</a>,</li> + +<li>run grgsm_livemon and adjust the frequency until the terminal +where it was started is filled with a stream of text (meaning you +found a GSM station).</li> + +<li>go into the IMSI-catcher directory and run 'sudo python simple_IMSI-catcher.py' to extract the IMSI numbers.</li> + +</ol> + +To make it even easier in the future to get this sniffer up and +running, I decided to package +<a href="https://github.com/ptrkrysik/gr-gsm/">the gr-gsm project</a> +for Debian (<a href="https://bugs.debian.org/871055">WNPP +#871055</a>), and the package was uploaded into the NEW queue today. +Luckily the gnuradio maintainer has promised to help me, as I do not +know much about gnuradio stuff yet. + +I doubt this "IMSI cacher" is anywhere near as powerfull as +commercial tools like +<a href="https://www.thespyphone.com/portable-imsi-imei-catcher/">The +Spy Phone Portable IMSI / IMEI Catcher</a> or the +<a href="https://en.wikipedia.org/wiki/Stingray_phone_tracker">Harris +Stingray</a>, but I hope the existance of cheap alternatives can make +more people realise how their whereabouts when carrying a cell phone +is easily tracked. Seeing the data flow on the screen, realizing that +I live close to a police station and knowing that the police is also +wearing cell phones, I wonder how hard it would be for criminals to +track the position of the police officers to discover when there are +police near by, or for foreign military forces to track the location +of the Norwegian military forces, or for anyone to track the location +of government officials... + +It is worth noting that the data reported by the IMSI-catcher +script mentioned above is only a fraction of the data broadcasted on +the GSM network. It will only collect one frequency at the time, +while a typical phone will be using several frequencies, and not all +phones will be using the frequencies tracked by the grgsm_livemod +program. Also, there is a lot of radio chatter being ignored by the +simple_IMSI-catcher script, which would be collected by extending the +parser code. I wonder if gr-gsm can be set up to listen to more than +one frequency? + + + How does it feel to be wiretapped, when you should be doing the wiretapping... http://people.skolelinux.org/pere/blog/How_does_it_feel_to_be_wiretapped__when_you_should_be_doing_the_wiretapping___.html diff --git a/blog/tags/sysadmin/index.html b/blog/tags/sysadmin/index.html index f89dc113d5..271a00cdcc 100644 --- a/blog/tags/sysadmin/index.html +++ b/blog/tags/sysadmin/index.html @@ -345,6 +345,8 @@ and DHCP updates I wanted to do.

July (1)

August (1)

2016 @@ -611,7 +613,7 @@ and DHCP updates I wanted to do.

@@ -625,7 +627,7 @@ and DHCP updates I wanted to do.

@@ -669,7 +671,7 @@ and DHCP updates I wanted to do.

@@ -699,7 +701,7 @@ and DHCP updates I wanted to do.

diff --git a/blog/tags/usenix/index.html b/blog/tags/usenix/index.html index a4c954cc24..39d6169d54 100644 --- a/blog/tags/usenix/index.html +++ b/blog/tags/usenix/index.html @@ -241,6 +241,8 @@ for other sites to consider too?

July (1)

August (1)

2016 @@ -507,7 +509,7 @@ for other sites to consider too?

@@ -521,7 +523,7 @@ for other sites to consider too?

@@ -565,7 +567,7 @@ for other sites to consider too?

@@ -595,7 +597,7 @@ for other sites to consider too?

diff --git a/blog/tags/valg/index.html b/blog/tags/valg/index.html index e33c217c85..df2a580a97 100644 --- a/blog/tags/valg/index.html +++ b/blog/tags/valg/index.html @@ -953,6 +953,8 @@ inneholdt i Iran hvis de ikke hadde hemmelige valg?

July (1)

August (1)

2016 @@ -1219,7 +1221,7 @@ inneholdt i Iran hvis de ikke hadde hemmelige valg?

@@ -1233,7 +1235,7 @@ inneholdt i Iran hvis de ikke hadde hemmelige valg?

@@ -1277,7 +1279,7 @@ inneholdt i Iran hvis de ikke hadde hemmelige valg?

@@ -1307,7 +1309,7 @@ inneholdt i Iran hvis de ikke hadde hemmelige valg?

diff --git a/blog/tags/video/index.html b/blog/tags/video/index.html index d3461c61c4..64dd5e6f13 100644 --- a/blog/tags/video/index.html +++ b/blog/tags/video/index.html @@ -4926,6 +4926,8 @@ larger stick as well.

July (1)

August (1)

2016 @@ -5192,7 +5194,7 @@ larger stick as well.

@@ -5206,7 +5208,7 @@ larger stick as well.

@@ -5250,7 +5252,7 @@ larger stick as well.

@@ -5280,7 +5282,7 @@ larger stick as well.

diff --git a/blog/tags/vitenskap/index.html b/blog/tags/vitenskap/index.html index 344c4bf9c6..aca2f18995 100644 --- a/blog/tags/vitenskap/index.html +++ b/blog/tags/vitenskap/index.html @@ -407,6 +407,8 @@ skyskrapere. Takke meg til en tur til mÃ¥nen.

July (1)

August (1)

2016 @@ -673,7 +675,7 @@ skyskrapere. Takke meg til en tur til mÃ¥nen.

@@ -687,7 +689,7 @@ skyskrapere. Takke meg til en tur til mÃ¥nen.

@@ -731,7 +733,7 @@ skyskrapere. Takke meg til en tur til mÃ¥nen.

@@ -761,7 +763,7 @@ skyskrapere. Takke meg til en tur til mÃ¥nen.

diff --git a/blog/tags/web/index.html b/blog/tags/web/index.html index da8b2b7d6e..3a3a51e22a 100644 --- a/blog/tags/web/index.html +++ b/blog/tags/web/index.html @@ -3709,6 +3709,8 @@ be the only one fitting our needs. :/

July (1)

August (1)

2016 @@ -3975,7 +3977,7 @@ be the only one fitting our needs. :/

@@ -3989,7 +3991,7 @@ be the only one fitting our needs. :/